Lucene search
MicrosoftMS:CVE-2022-34713HistoryAug 09, 2022 - 7:00 a.m.
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
2022-08-0907:00:00
Microsoft
msrc.microsoft.com
378
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.971 High
EPSS
Percentile
99.8%
Related
threatpost
threatpost
Microsoft Patches ‘Dogwalk’ Zero-Day and 17 Critical Flaws
2022-08-10 12:48:05
Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug
2022-06-23 12:21:33
Follina Exploited by State-Sponsored Hackers
2022-06-07 12:45:00
prion
prion
Remote code execution
2022-08-09 20:15:00
Remote code execution
2022-06-01 20:15:00
attackerkb
attackerkb
CVE-2022-34713
2022-08-09 00:00:00
CVE-2022-30190
2022-06-01 00:00:00
checkpoint_advisories
checkpoint_advisories
cve
cve
CVE-2022-34713
2022-08-09 20:15:00
CVE-2022-30190
2022-06-01 20:15:00
hivepro
hivepro
Microsoft tackles DogWalk zero-day vulnerability and multiple privilege escalation vulnerabilities
2022-08-11 08:15:28
Exploitation of Follina leads to takeover of domain controller
2022-11-04 12:38:02
Follina: A zero-day vulnerability in Microsoft Office
2022-06-15 10:13:53
cisa_kev
cisa_kev
thn
thn
New Woody RAT Malware Being Used to Target Russian Organizations
2022-08-04 12:55:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2022-10-23 15:24:43
trellix
trellix
Beyond File Search: A Novel Method
2023-07-26 00:00:00
Beyond File Search: A Novel Method
2023-07-26 00:00:00
hackerone
hackerone
Reddit: Unrestricted File Upload on reddit.secure.force.com
2022-06-20 09:10:53
talosblog
talosblog
malwarebytes
malwarebytes
Woody RAT: A new feature-rich malware spotted in the wild
2022-08-03 21:00:00
Woody RAT: A new feature-rich malware spotted in the wild
2022-08-03 21:25:52
FAQ: Mitigating Microsoft Office’s ‘Follina’ zero-day
2022-06-01 16:36:44
cisa
cisa
Microsoft Releases Workaround Guidance for MSDT "Follina" Vulnerability
2022-05-31 00:00:00
msrc
msrc
CVE-2022-30190 マイクロソフト サポート診断ツールの脆弱性に関するガイダンス
2022-05-30 07:00:00
Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability
2022-05-30 07:00:00
Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability
2022-05-30 07:00:00
mscve
mscve
openvas
openvas
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability (Follina)
2022-06-01 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5014748)
2022-06-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5014710)
2022-06-15 00:00:00
rapid7blog
rapid7blog
CVE-2022-30190: "Follina" Microsoft Support Diagnostic Tool Vulnerability
2022-05-31 15:15:16
Metasploit Weekly Wrap-Up
2022-06-10 18:07:05
Metasploit Weekly Wrap-Up
2022-09-02 19:39:21
nessus
nessus
The Microsoft Windows Support Diagnostic Tool (MSDT) RCE Workaround Detection (CVE-2022-30190)
2022-05-31 00:00:00
KB5014743: Windows Server 2008 Security Update (June 2022)
2022-06-14 00:00:00
KB5014742: Windows 7 and Windows Server 2008 R2 Security Update (June 2022)
2022-06-14 00:00:00
packetstorm
packetstorm
Microsoft Office Word MSDTJS Code Execution
2022-06-07 00:00:00
Microsoft Office MSDT Follina Proof Of Concept
2022-05-31 00:00:00
qualysblog
qualysblog
Detect the Follina MSDT Vulnerability (CVE-2022-30190) with Qualys Multi-Vector EDR & Context XDR
2022-06-14 20:52:25
Launching Qualys Cloud Threat Database
2023-02-08 13:50:00
In-Depth Look Into Data-Driven Science Behind Qualys TruRisk
2022-10-10 14:32:29
schneier
schneier
Clever — and Exploitable — Windows Zero-Day
2022-06-01 18:25:36
metasploit
metasploit
Microsoft Office Word MSDTJS
2022-05-30 17:23:18
kaspersky
kaspersky
KLA12549 RCE vulnerability in Microsoft Windows
2022-05-30 00:00:00
KLA12550 RCE vulnerability in Microsoft Products (ESU)
2022-05-30 00:00:00
KLA12603 Multiple vulnerabilities in Microsoft Products (ESU)
2022-08-09 00:00:00
zdt
zdt
Microsoft Office Word MSDTJS Code Execution Exploit
2022-06-07 00:00:00
krebs
krebs
Microsoft Patch Tuesday, June 2022 Edition
2022-06-15 04:52:30
Microsoft Patch Tuesday, August 2022 Edition
2022-08-09 23:01:10
pentestpartners
pentestpartners
Follina 0day exploit. Malicious code execution in Office docs
2022-06-01 05:38:30
securelist
securelist
IT threat evolution Q2 2022
2022-08-15 12:00:34
IT threat evolution in Q3 2022. Non-mobile statistics
2022-11-18 08:10:34
avleonov
avleonov
googleprojectzero
googleprojectzero
2022 0-day In-the-Wild Exploitation…so far
2022-06-30 00:00:00
mskb
mskb
June 14, 2022—KB5014748 (Monthly Rollup)
2022-06-14 07:00:00
June 14, 2022—KB5014742 (Security-only update)
2022-06-14 07:00:00
June 14, 2022—KB5014710 (OS Build 10240.19325) - EXPIRED
2022-06-14 07:00:00
ics
ics
2022 Top Routinely Exploited Vulnerabilities
2023-08-03 12:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.971 High
EPSS
Percentile
99.8%
Related for MS:CVE-2022-34713